Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study-Reference-Cited by-同舟云学术

Static-Analysis-Based Solutions to Security Challenges in Cloud-Native Systems: Systematic Mapping Study

Published:2023-02-04 Issue:4 Volume:23 Page:1755
ISSN:1424-8220
Container-title:Sensors
language:en
Short-container-title:Sensors

Author:

Rahaman Md Shahidur¹,Islam Agm¹,Cerny Tomas¹^ORCID,Hutton Shaun¹

Affiliation:

1. Department of Computer Science, ECS, Baylor University, Waco, TX 76798, USA

Abstract

Security is a significant priority for cloud-native systems, regardless of the system size and complexity. Therefore, one must utilize a set of defensive mechanisms or controls to protect the system from exploitation by potential adversaries. There is an expanding amount of research on security issues, including attacks against individual microservices or overall systems and their corresponding defense mechanism options. This study intends to provide a comprehensive overview of currently used defense mechanisms involving static analysis that can detect and react against associated attacks and vulnerabilities. We present a systematic literature review that extracts current approaches for the security analysis of microservices and the violation of security principles. We gathered 1049 relevant publications, of which 50 were selected as primary studies. We are providing practitioners and developers with a structured survey of the existing literature of defensive solutions for microservice architectures and cloud-native systems to aid them in identifying applicable solutions for their systems.

Funder

National Science Foundation

Red Hat Research

Publisher

MDPI AG

Subject

Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry

Link

https://www.mdpi.com/1424-8220/23/4/1755/pdf

Reference80 articles.

1. Daya, S., Van Duy, N., Eati, K., Ferreira, C.M., Glozic, D., Gucer, V., Gupta, M., Joshi, S., Lampkin, V., and Martins, M. (2015). Microservices from Theory to Practice: Creating Applications in IBM Bluemix Using the Microservices Approach, IBM Redbooks. Available online: https://www.redbooks.ibm.com/redbooks/pdfs/sg248275.pdf.

2. Kalske, M., Mäkitalo, N., and Mikkonen, T. (2017). Web Engineering, Springer.

3. Li, X., Chen, Y., Lin, Z., Wang, X., and Chen, J.H. (2021, January 11–13). Automatic Policy Generation for Inter-Service Access Control of Microservices. Proceedings of the 30th USENIX Security Symposium (USENIX Security 21), Virtual Event.

4. Understanding and addressing quality attributes of microservices architecture: A Systematic literature review;Li;Inf. Softw. Technol.,2021

5. Muresu, D. (2021). Investigating the Security of a Microservices Architecture: A Case Study on Microservice and Kubernetes Security. [Master’s Thesis, KTH Royal Institute of Technology]. Available online: https://www.diva-portal.org/smash/get/diva2:1597972/FULLTEXT01.pdf.

Cited by 3 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. Security in Cloud-Native Services: A Survey;Journal of Cybersecurity and Privacy;2023-10-26

2. Access Control Design Practice and Solutions in Cloud-Native Architecture: A Systematic Mapping Study;Sensors;2023-03-24

3. Designing a microservice architecture on the example of an automated application for the HR department;E3S Web of Conferences;2023